ACCESS SECURITY AND AUTHENTICATION FOR ACCOUNTS
18 Dec 2020
In a world where digitalizing and technology develops day by day one step further, the security risk is increasing for the developing systems and growing data.
We work in the line with the needs of our institutions for New systems, new software. We are constantly incorporate and corporate data, including our personal data that continues to grow every day.
Most common method of authenticating users is by using a password. But password privacy can be compromised. Learning your password, being predictable, bypassing the password verification measure for any reason, allows someone to place an unauthorized access. Unauthorized access may result in breach of your data security or financial losses.
It is important to consider the following guidelines to ensure that the passwords we will use are more secure.
For your passwords,
1. Do not contain personal information such as date of birth, name, surname.
2. In addition to letters, numbers and special characters such as "?, @,!, #,%, +, -, *,%" should be used.
3. It should never consist of (consecutive) characters following the keyboard key sequence. For example qwerty, asdqaz, 12345, 1234, 123456.
4. Different combinations of lowercase and uppercase letters, special characters and numbers should be used at the same time. For example, tabby! 48? FEN3R #, Bead * 39 & G! Saray @.
5. Change your passwords with periodically after some time interval.
6. Do not use the same password for everything.
Multi-Factor Authentication should be used additionally for situations where password login security is not sufficient or can be exceeded.
What is Multi Factor Authentication (MFA)?
MFA is also known as Multi-Factor Authentication or Two-Factor Authentication.
Multifactor Authentication increases your account security by requiring various types of authentication to prove your identity, for additional security measure to our existing encryption model when logging into an application.
You can increase the security level with various options such as smart phone, biometric device, mobile application, text message among the Multifactor Authentication methods. Even if you have the username and password of the system in unauthorized access attacks, the authentication phase will not be completed unless a device is authorized for MFA.
You can use the MFA method in all your hardware and software, as well as in all of your Microsoft 365 and cloud technologies.
Multi-Factor Identity Verification is included in the list of mandatory measures to be taken in accordance with the Personal Data Protection Law.
